CLAIM AMENDMENTS 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

1. (Currently amended) A method, comprising: 

initializing a virus scanner during a pre-boot phase of a computer system: 
scrubbing data read from an input/output (I/O) device of the computer system by the 
virus scanner using a virus signature database before the data is loaded , wherein the virus 
sign it nix datab ase is stor ed in a place not exposed to the operating system and is updated 
during the pre-boot phase : and 

enacting a platform policy if a virus is detected in the data. 

2. (Original) The method of claim 1, further comprising scrubbing contents of a memory 
device of the computer system during the pre-boot phase by the virus scanner. 

3. (Original) The method of claim 1 , further comprising updating the virus signature 
database with updated virus signatures. 

4. (Original) The method of claim 3 wherein the virus signature database is updated during 
the pre-boot phase. 

5. (Original) The method of claim 1 wherein the virus signature database is not exposed to 
an operating system executing on the computer system. 

6. (Original) The method of claim 5 wherein the virus signature database is stored in a 
firmware -reserved area. 

7. (Previous!} Presented * The method of claim 1 wherein the \ irus scanner is executing 
in a virtual machine monitor t VMM) executing on the computer system, the VMM 
supporting at least one virtual machine (VM) executing on the computer system, wherein the 
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VM executes an operating system that is different from the VMM and the operating systems 
executed by other VMs. 

8. (Original) The method of claim 7 wherein scrubbing data read from the I/O device 
includes: 

receiving a request from a requester to read data from the I/O device, the requester in 
a VM of the at least one VM; 

loading at least a portion of the requested data into a buffer; 

scrubbing the at least a portion of the requested data with the virus scanner; 

returning an error signal to the requester if the virus scanner detects a virus in the at 
least a portion of the requested data; and 

forwarding the requested data to the requester if the virus scanner does not detect a 
virus in the at least a portion of the requested data. 

9. (Original) The method of claim 1 wherein the virus scanner is operable during the pre- 
boot phase, an operating system (OS) runtime phase, and an after-life phase of the computer 
system independent of an operating system of the computer system. 

10. (Original) The method of claim 1 wherein the virus scanner scrubs the data without 
having knowledge of a file system of the data. 

1 1 . (Original) The method of claim 1 , further comprising enacting the platform policy if the 
virus scanner detects non-normal behavior within the computer system. 

12. (Currently amended) An article of manufacture comprising: 

a machine-accessible medium including a piuraiiu of instructions which when 

executed perform operations coinpriMng: 

mil mil /in e a \ iras seamier dunmc a piv-hool phase of a computer system: 
scrubbing contents of a memory device of the computer system during the pre-boot 

phase b\ the virus scanner using a virus signature database , where in i us men mi 
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database is stored in place not exposed to the operating system and is updated during the pre- 
boot phase ; 

scrubbing data read from an input/output (I/O) device of the computer system by the 
virus scanner using the virus signature database before the data is loaded; and 
generating an error signal if a virus is detected by the virus scanner. 

13. (Original) The article of manufacture of claim 12, further comprising receiving updated 
virus signatures at the computer system to update the virus signature database. 

14. (Original) The article of manufacture of claim 12 wherein the virus signature database is 
stored in a place not exposed to an operating system of the computer system. 

15. (Original) The article of manufacture of claim 12 wherein the virus scanner to be 
operable during the pre4ooot phase, an operating system (OS) runtime phase, and an after-life 
phase of the computer system independent of an operating system of the computer system. 

16. (Original) The article of manufacture of claim 12 wherein the virus scanner to scrub the 
data without having knowledge of a file system of the data. 

17. (Original) The article of manufacture of claim 12 wherein scrubbing data read from the 
I/O device includes: 

launching a virtual machine monitor (VMM), the virus scanner to operate from the 
VMM; and 

launching a virtual machine (VM) to be supported by the VMM. 

18. (Original) The article of manufacture of claim 17 wherein execution of the plurality of 
instructions further perform operations comprising: 

receis in» a request from a requester in she \ M to read data from the I/O device: 

loading at least a portion of the requested data into a buffer: 

scrubbing the at least a portion of the requested data with the virus scanner; 
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returning an error signal to the requester if the virus scanner detects a virus in the at 
least a portion of the requested data; and 

forwarding the requested data to the requester if the virus scanner does not detect a 
virus in the at least a portion of the requested data. 

1 9. (Currently Amended) The article of manufacture of claim 12 wherein the plurality of 
instructions is to operate in compliance with an Extensible Firmware Interface (EFI) 
specification. 

20. (Currently amended) A computer system, comprising: 

a processor; 

a memory device operatively coupled to the processor; 
a storage device operatively coupled to the processor; and 

at least one flash memory device operatively coupled to the processor, the at least one 
flash memory device including firmware instructions which when executed by the 
processor perform operations comprising: 

initializing a virus scanner during a pre-boot phase of a computer system; 

scrubbing contents of the memory device during the pre-boot phase by the 
virus scanner using a virus signature database , wherein the virus signature database is 
stored in a place not exposed to the operating system and is updated during the pre- 
boot phase ; 

scrubbing data read from the storage device by the virus scanner using the 
virus signature database before the data is loaded in the memory device; and 
generating an error signal if a virus is detected by the virus scanner. 

21 . (Original > The computer system of claim 20, further comprising a network interface 
operatively coupled to the processor, the virus scanner to scrub data read from the network 
interface using the virus signature database before the data is loaded in the memory device. 
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22. (Original) The computer system of claim 20 wherein the virus signature database is 
stored in a firmware reserved area of the storage device, the firmware reserved area not 
exposed to an operating system of the computer s\stem. 

23. (Original) The system of claim 20 wherein execution of the firmw are instructions further 
perform operations comprising updating the virus signature database w nh updated virus 
signatures downloaded from an external vims signature repository communicatively coupled 
to the computer system. 

24. (Original) The computer system of claim 20 wherein the virus scanner is operable during 
the pre-boot phase, an operating system (OS) runtime phase, and an after-life phase of the 
computer system independent of an operating system of the computer system. 

25. (Original) The computer system of claim 20 wherein the virus scanner to scrub the data 
without having knowledge of a file system of the storage device. 

26. (Previously Presented) The computer system of claim 20 wherein the firmware 
instructions to operate in compliance with an Extensible Firmware Interface (EFI) 
specification. 

27. (Currently amended) A computer system, comprising: 

a virtual machine monitor (VMM) to support at least one virtual machine (VMX_ 
each VM having a separate operating system; 

an input/output (I/O) device, the VMM to emulate an I/O controller for the I/O 

device; 

a virus scanner within the VMM to scrub data read from the I/O device before 
the data is loaded; and 

a virus signature database to facilitate identification of a virus by the virus 
scanner. 
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28. (Original) The computer system of claim 27 wherein the virus scanner is operable 
during the pre-boot phase, an operating system (OS > runtime phase, and an after-life 
phase of the computer system independent of an operating system of the computer 
system. 

29. (Original) The computer system of claim 27 wherein the virus scanner to scrub the 
data without having knowledge of a file system of the I/O device. 

30. (Previously Presented) The computer system of claim 27 wherein the VMM and 
the virus scanner to operate in compliance with an Extensible Firmware Interface (EFI) 
specification. 
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